AVG-1592 log

Package python-reportlab
Status Fixed
Severity Medium
Type url request injection
Affected 3.5.54-1
Fixed 3.5.55-1
Current 3.6.9-1 [community]
Ticket None
Created Fri Feb 19 09:20:54 2021
Issue Severity Remote Type Description
CVE-2020-28463 Medium Yes Url request injection
All versions of package python-reportlab are vulnerable to Server-side Request Forgery (SSRF) via img tags. In order to reduce risk, use trustedSchemes &...